3bdcd7a8a0dfc7c7a6dc772d33428845e576db96dbc0bef3c50b5b3000085ba7 | Triage

Sharing

General

Target

3bdcd7a8a0dfc7c7a6dc772d33428845e576db96dbc0bef3c50b5b3000085ba7
Size

1.1MB
Sample

221127-d596yabc3x
MD5

3343a9e560b604be88d2086a6f5d0157
SHA1

2e51c2626ce49cec41efe1e20656a76a8f50ed20
SHA256

3bdcd7a8a0dfc7c7a6dc772d33428845e576db96dbc0bef3c50b5b3000085ba7
SHA512

5e0c1832fb29f64d797612ace91f9b19beb2e4bf56f5846119a77a3b4eb990aeaa373bccd97e913b81b451649c7e0934bded4cbc34abbd595ce1203f4e43ed2f
SSDEEP

12288:+uklkMVqd1t8jEIoCTaPG0j4DeuH5GyAw64vYr1IZq6T7UNU7hm92J6Gz1VwFAHe:+3jl2WzbZL6gEAqEVmA7x6FAnc

Score

7^/10

Malware Config

Targets

- Target
  
  3bdcd7a8a0dfc7c7a6dc772d33428845e576db96dbc0bef3c50b5b3000085ba7
- Size
  
  1.1MB
- MD5
  
  3343a9e560b604be88d2086a6f5d0157
- SHA1
  
  2e51c2626ce49cec41efe1e20656a76a8f50ed20
- SHA256
  
  3bdcd7a8a0dfc7c7a6dc772d33428845e576db96dbc0bef3c50b5b3000085ba7
- SHA512
  
  5e0c1832fb29f64d797612ace91f9b19beb2e4bf56f5846119a77a3b4eb990aeaa373bccd97e913b81b451649c7e0934bded4cbc34abbd595ce1203f4e43ed2f
- SSDEEP
  
  12288:+uklkMVqd1t8jEIoCTaPG0j4DeuH5GyAw64vYr1IZq6T7UNU7hm92J6Gz1VwFAHe:+3jl2WzbZL6gEAqEVmA7x6FAnc
Score

7^/10
- Checks BIOS information in registry
  BIOS information is often read in order to detect sandboxing environments.
- Maps connected drives based on registry
  Disk information is often read in order to detect sandboxing environments.
- Suspicious use of SetThreadContext
behavioral1 behavioral2

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Modify Registry

Credential Access

Discovery

Peripheral Device Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2